CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
EPSS
Percentile
52.9%
chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to impersonate a trusted website and trick the user into performing actions such as revealing sensitive information or installing malware. This could have serious consequences for the victim, such as financial losses, identity theft, or damage to their computer systems.
chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop.html
crbug.com/1418549
lists.fedoraproject.org/archives/list/[email protected]/message/6P5RJ6UD37IPBWU3GPQNMIUFVOVCGSLY/
lists.fedoraproject.org/archives/list/[email protected]/message/U3V6GPGMY6ZWVWPECMQGGOKQVATXJ5BA/
lists.fedoraproject.org/archives/list/[email protected]/message/Z4JI552XDFD6DYFU6WNCRBCAXWOFOOSF/
security-tracker.debian.org/tracker/CVE-2023-2464
security.gentoo.org/glsa/202309-17
www.debian.org/security/2023/dsa-5398